Lucene search
HistoryMay 10, 2023 - 4:15 p.m.
CVE-2023-31567
podofo
v0.10.0
heap buffer overflow
pdfencryptaesv3
cve-2023-31567
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
57.4%
Podofo v0.10.0 was discovered to contain a heap buffer overflow via the component PoDoFo::PdfEncryptAESV3::PdfEncryptAESV3.
Affected configurations
Node
podofo_projectpodofoMatch0.10.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| podofo_project:podofo | podofo project podofo | eq | 0.10.0 |
References
Related
debiancve
debiancve
CVE-2023-31567
2023-05-10 16:15:12
osv
osv
CVE-2023-31567
2023-05-10 16:15:12
nvd
nvd
CVE-2023-31567
2023-05-10 16:15:12
ubuntucve
ubuntucve
CVE-2023-31567
2023-05-10 00:00:00
veracode
veracode
Denial Of Services (DoS)
2023-05-21 08:49:57
prion
prion
Heap overflow
2023-05-10 16:15:00
alpinelinux
alpinelinux
CVE-2023-31567
2023-05-10 16:15:00
cvelist
cvelist
CVE-2023-31567
2023-05-10 00:00:00
nessus
nessus
GLSA-202405-33 : PoDoFo: Multiple Vulnerabilities
2024-05-12 00:00:00
gentoo
gentoo
PoDoFo: Multiple Vulnerabilities
2024-05-12 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
57.4%
Related for CVE-2023-31567